42.112.237.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jun 29 12:09:55 l02a sshd[26122]: Invalid user sniffer from 42.112.237.42 Jun 29 12:09:55 l02a sshd[26123]: Invalid user sniffer from 42.112.237.42	2020-06-30 00:19:44

Comments on same subnet:

IP	Type	Details	Datetime
42.112.237.33	attackbots	1578316385 - 01/06/2020 14:13:05 Host: 42.112.237.33/42.112.237.33 Port: 445 TCP Blocked	2020-01-06 23:32:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.237.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1007
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.237.42.			IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062900 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 30 00:19:37 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 42.237.112.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 42.237.112.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
2.50.34.153	attackspambots	1589404028 - 05/13/2020 23:07:08 Host: 2.50.34.153/2.50.34.153 Port: 445 TCP Blocked	2020-05-14 07:13:54
189.39.112.94	attack	May 13 19:11:39 vps46666688 sshd[21709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.39.112.94 May 13 19:11:41 vps46666688 sshd[21709]: Failed password for invalid user goon from 189.39.112.94 port 43832 ssh2 ...	2020-05-14 06:41:45
222.209.85.197	attackbotsspam	SSH Invalid Login	2020-05-14 06:36:12
159.65.158.30	attackspam	May 14 00:37:00 PorscheCustomer sshd[5155]: Failed password for root from 159.65.158.30 port 56660 ssh2 May 14 00:40:59 PorscheCustomer sshd[5368]: Failed password for root from 159.65.158.30 port 35056 ssh2 May 14 00:45:00 PorscheCustomer sshd[5530]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.158.30 ...	2020-05-14 06:47:38
157.245.54.200	attackbots	May 14 00:44:35 PorscheCustomer sshd[5504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 May 14 00:44:36 PorscheCustomer sshd[5504]: Failed password for invalid user php from 157.245.54.200 port 42786 ssh2 May 14 00:48:44 PorscheCustomer sshd[5679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 ...	2020-05-14 07:07:17
14.23.81.42	attackspambots	(sshd) Failed SSH login from 14.23.81.42 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 13 22:17:18 andromeda sshd[15285]: Invalid user thief from 14.23.81.42 port 39028 May 13 22:17:20 andromeda sshd[15285]: Failed password for invalid user thief from 14.23.81.42 port 39028 ssh2 May 13 22:29:03 andromeda sshd[15575]: Invalid user user from 14.23.81.42 port 38340	2020-05-14 06:49:46
139.59.23.69	attackspam	May 13 16:25:56 server1 sshd\[10413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.23.69 user=root May 13 16:25:58 server1 sshd\[10413\]: Failed password for root from 139.59.23.69 port 33962 ssh2 May 13 16:33:10 server1 sshd\[12719\]: Invalid user ze from 139.59.23.69 May 13 16:33:10 server1 sshd\[12719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.23.69 May 13 16:33:12 server1 sshd\[12719\]: Failed password for invalid user ze from 139.59.23.69 port 40604 ssh2 ...	2020-05-14 07:05:41
175.100.18.237	attack	13.05.2020 23:07:21 - SMTP Spam without Auth on hMailserver Detected by ELinOX-hMail-A2F	2020-05-14 07:08:32
115.42.127.133	attackbots	May 13 18:52:39 ny01 sshd[27270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.42.127.133 May 13 18:52:41 ny01 sshd[27270]: Failed password for invalid user db2inst1 from 115.42.127.133 port 35379 ssh2 May 13 18:57:21 ny01 sshd[28216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.42.127.133	2020-05-14 07:10:58
103.92.24.240	attack	May 14 00:46:29 server sshd[8952]: Failed password for root from 103.92.24.240 port 55878 ssh2 May 14 00:48:58 server sshd[9046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.24.240 May 14 00:49:00 server sshd[9046]: Failed password for invalid user test1 from 103.92.24.240 port 57400 ssh2 ...	2020-05-14 07:12:31
222.186.175.215	attack	May 14 00:42:57 pve1 sshd[3425]: Failed password for root from 222.186.175.215 port 31096 ssh2 May 14 00:43:01 pve1 sshd[3425]: Failed password for root from 222.186.175.215 port 31096 ssh2 ...	2020-05-14 06:43:35
49.135.41.14	attack	May 12 05:31:34 server6 sshd[31001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=w0109-49-135-41-14.uqwimax.jp May 12 05:31:36 server6 sshd[31001]: Failed password for invalid user puparium from 49.135.41.14 port 44822 ssh2 May 12 05:31:36 server6 sshd[31001]: Received disconnect from 49.135.41.14: 11: Bye Bye [preauth] May 12 05:43:05 server6 sshd[10716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=w0109-49-135-41-14.uqwimax.jp May 12 05:43:07 server6 sshd[10716]: Failed password for invalid user admin1 from 49.135.41.14 port 59112 ssh2 May 12 05:43:08 server6 sshd[10716]: Received disconnect from 49.135.41.14: 11: Bye Bye [preauth] May 12 06:08:43 server6 sshd[2693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=w0109-49-135-41-14.uqwimax.jp May 12 06:08:45 server6 sshd[2693]: Failed password for invalid user export from 49.135.41.14 port 4........ -------------------------------	2020-05-14 07:01:46
222.186.175.148	attack	May 13 22:51:09 game-panel sshd[14088]: Failed password for root from 222.186.175.148 port 11712 ssh2 May 13 22:51:19 game-panel sshd[14088]: Failed password for root from 222.186.175.148 port 11712 ssh2 May 13 22:51:22 game-panel sshd[14088]: Failed password for root from 222.186.175.148 port 11712 ssh2 May 13 22:51:22 game-panel sshd[14088]: error: maximum authentication attempts exceeded for root from 222.186.175.148 port 11712 ssh2 [preauth]	2020-05-14 06:51:55
183.36.125.220	attack	web-1 [ssh_2] SSH Attack	2020-05-14 07:13:10
195.54.160.183	attackspam	May 14 02:16:05 pkdns2 sshd\[50257\]: Invalid user admin from 195.54.160.183May 14 02:16:07 pkdns2 sshd\[50257\]: Failed password for invalid user admin from 195.54.160.183 port 51063 ssh2May 14 02:16:08 pkdns2 sshd\[50261\]: Invalid user admin from 195.54.160.183May 14 02:16:10 pkdns2 sshd\[50261\]: Failed password for invalid user admin from 195.54.160.183 port 54593 ssh2May 14 02:16:10 pkdns2 sshd\[50263\]: Invalid user admin from 195.54.160.183May 14 02:16:12 pkdns2 sshd\[50263\]: Failed password for invalid user admin from 195.54.160.183 port 57445 ssh2 ...	2020-05-14 07:16:35

Recently Reported IPs

230.248.209.111	49.234.237.167	177.209.151.14	139.59.230.44
113.190.34.107	94.26.115.51	90.188.238.163	177.131.30.157
66.84.122.131	46.4.94.157	14.241.34.161	49.88.113.77
195.222.96.143	186.48.167.78	2800:810:516:149b:df9:bf5f:10ea:5ec7	161.35.206.174
38.102.173.8	171.228.199.248	113.161.62.158	173.187.188.174